Versions Compared

Old Version 38

changes.mady.by.user Gary Leicht

Saved on

compared with

New Version 39

changes.mady.by.user Gary Leicht

Saved on

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.

...

  • External Networks: Select this to add external networks to the network scope. For more information, see Configuring External Networks.
  • DNS Forwarding Proxy: Select this to add DNS forwarding proxies to your network scope. For more information about DNS forwarding proxy, see DNS Forwarding Proxy.
  • Endpoint Groups: Select this to add BloxOne Endpoint groups to your network scope. For information about BloxOne Endpoint groups, see BloxOne Endpoint Group Assignment.
  • User Groups: Select this to add user groups to the network scope. The available user groups are those that have been synchronized through the third-party IdP (identify provider) that your admin has configured for access authentication. For more information, see Synchronizing User Groups
  • Tags: Select this to add user-defined tags to your network scope. When the network scope includes an object included in multiple policies, then the policy precedence order will determine which policy is enforced. Changes in policy tagging are updated by the system and may take up to 5 minutes to complete. When multiple tagging changes occur to a security policy, the policy will reflect the most recent change to the policy. For more information on tags, see applying tags
  • IPAM Hosts: Select this to add IPAM hosts and DHCP ranges to your network scope. IPAM hosts and DHCP ranges can also be added to a policy using tags/ When adding tags to IPAM host or DHCP range, any tag-based changes in scope-based on tags can take up to 5 minutes to take effect. To associate a security policy with an IPAM host or DHCP range, do the following:

1. Select an available IPAM host from those listed on the Manage IPAM Hosts panel to add to your security policy.
2. Click > to add the IPAM host to your security policy. Or, click the double arrows (>>) to add all available IPAM Hosts to your policy.
3. Click Finish to complete the configuration process or click Next to continue the configuration process.

  • IPAM: Select this to add internal networks to the network scope. When adding tags to  IPAM scopes, any tag-based changes in an IPAM scope based on tags can take up to 5 minutes to take effect. To associate a security policy with DDI IPAM objects in the DNS query, do the following:

    1. Select an IP Space to add to your security policy (Manage > IPAM/DHCP).
    2. Click the horizontal menu item to display the IP Address block(s) associated with the IP Space. From among the listed address blocks, choose an address block to add to your security policy. Make a note of your selected IP space and address block you want associated with your security policy.  

Allowing Overlapping Internal and External Subnets When Defining Security Policy Scope

...